vulnerability scan identified ciphers on TLS 1.1 and 1.2 that customer deem to be weak. The concerned ciphers are below:
| TLSv1.1:
| ciphers:
| TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA (secp521r1)
| TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA (secp521r1)
| TLS_RSA_WITH_AES_256_CBC_SHA (rsa 2048) TLS_RSA_WITH_AES_128_CBC_SHA
| (rsa 2048)
| TLSv1.2:
| ciphers:
| TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA (secp521r1)
| TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA (secp521r1)
| TLS_RSA_WITH_AES_256_CBC_SHA (rsa 2048) TLS_RSA_WITH_AES_128_CBC_SHA